Vulnerability Note VU#823350

Squid fails to properly handle oversized reply headers

Overview

The Squid web proxy cache may be vulnerable to oversized HTTP reply headers.

Description

Squid functions as a web proxy and cache application for a number of protocols, including the hypertext transfer protocol (HTTP). A defect in the Squid HTTP handling prevents oversized reply headers relating to an HTTP protocol mismatch from being handled properly.

Impact

The complete impact of this vulnerability is not yet known. This vulnerability is platform independent.

Solution

Apply an update

Administrators should obtain an updated version of Squid from their vendor.